Re: Bypassing Ldap in tomcat .
On 16/08/2024 03:53, Shekhar Dhotre wrote: Hello Expert , Which is the configuration file wheee we can tell tomcat to bypass Ldap authentication and log in directly to oracle ? Oracle what? Database? Probably one of: - $CATALINA_BASE/conf/server.xml - $CATALINA_BASE/conf/context.xml - $CATALINA_BASE/conf///.xml - $CATALINA_BASE/webapps//META-INF/context.xml - $CATALINA_BASE/webapps/.war!/META-INF/context.xml If all else fails grep -R oracle * or the server name, IP address, database name, user name etc We have IBM ldap whose password is not known so failing on authentication . So reset the password. And I assume the answer to your first question is "Wherever you are trying to set the password in your second question". Mark - To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org
j_security_check error
Hi all,
I need help with problem that I can't fix.
I am using Apache Tomee 8, but I know that Apache Tomee rest on Apache
Tomcat, in this case version 9.
My problem is when some user exit from application this forward to login
page doing this:
HttpSession session = request.getSession();
session.invalidate();
request.getRequestDispatcher("/login.jsp").forward(request, response);
then if same user try to login, this launch something like this:
http://localhost:8080/appweb/privado/j_security_check
Asking in other forums, I read that " when you use JEE-standard Container
security, the user should not explicitly request the login/loginfail pages.
It won't work right."
However I have other applicacion running on payara and that works, then I
start to think that maybe is something misconfigured...
Someone has some idea about this problem?
Regards
Fernando
Re: j_security_check error
On 16/08/2024 16:16, Fernando wrote:
Hi all,
I need help with problem that I can't fix.
I am using Apache Tomee 8, but I know that Apache Tomee rest on Apache
Tomcat, in this case version 9.
My problem is when some user exit from application this forward to login
page doing this:
HttpSession session = request.getSession();
session.invalidate();
request.getRequestDispatcher("/login.jsp").forward(request, response);
then if same user try to login, this launch something like this:
http://localhost:8080/appweb/privado/j_security_check
Asking in other forums, I read that " when you use JEE-standard Container
security, the user should not explicitly request the login/loginfail pages.
It won't work right."
That is correct. Some implementations have additional configuration
options so this doesn't break but you would be better forwarding to a
default page that requires authentication. The FORM auth will do its thing.
However I have other applicacion running on payara and that works, then I
start to think that maybe is something misconfigured...
Someone has some idea about this problem?
https://tomcat.apache.org/tomcat-9.0-doc/config/valve.html#Form_Authenticator_Valve/Attributes
Look for "landingPage"
Mark
-
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
